Ne’er-Do-Well News – Page 13 – Computer Security Articles

The Original APT: Advanced Persistent Teenagers

April 6, 2022 admin A Little Sunshine, advanced persistent teenagers, amit yoran, APT, cisa, FBI, lapsus$, microsoft, Ne'er-Do-Well News, nvidia, Okta, Samsung, Tenable, The Coming Storm, twitter hack, vishing, voice phishing, wired

Credit to Author: BrianKrebs| Date: Wed, 06 Apr 2022 17:55:38 +0000

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. But few organizations have a playbook for responding to the kinds of virtual “smash and grab” attacks we’ve seen recently from LAPSUS$, a juvenile data extortion group whose short-lived, low-tech and remarkably effective tactics are putting some of the world’s biggest corporations on edge.

Independent Krebs

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

March 31, 2022 admin A Little Sunshine, apple, Bloomberg, bug, discord, Facebook, instagram, lapsus$, meta, Ne'er-Do-Well News, Sen. Ron Wyden, snapchat, Twitter, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 31 Mar 2022 22:54:45 +0000

On Tuesday, KrebsOnSecurity warned that hackers increasingly are using compromised government and police department email accounts to obtain sensitive customer data from mobile providers, ISPs and social media companies. Today, one of the U.S. Senate’s most tech-savvy lawmakers said he was troubled by the report and is now asking technology companies and federal agencies for information about the frequency of such schemes.

Independent Krebs

Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”

March 29, 2022 admin anitsu, data extortion, discord, Doxbin, emergency data request, everlynn, fake edr, FBI, kt, lapsus$, mark rasch, microsoft, miku, Ne'er-Do-Well News, oklaqq, Palo Alto Networks, pompompurin, recursion team, The Coming Storm, unit 221b, Web Fraud 2.0, white, whitedoxbin

Credit to Author: BrianKrebs| Date: Tue, 29 Mar 2022 14:07:27 +0000

There is a terrifying and highly effective “method” that criminal hackers are now using to harvest sensitive customer data from Internet service providers, phone companies and social media firms. It involves compromising email accounts and websites tied to police departments and government agencies, and then sending unauthorized demands for subscriber data while claiming the information being requested can’t wait for a court order because it relates to an urgent matter of life and death.

Independent Krebs

Estonian Tied to 13 Ransomware Attacks Gets 66 Months in Prison

March 25, 2022 admin albanec, cashout, directconnection, maksim berezan, Ne'er-Do-Well News, ransomware, u.s. department of justice, unlimited cashout

Credit to Author: BrianKrebs| Date: Fri, 25 Mar 2022 17:10:34 +0000

An Estonian man was sentenced today to more than five years in a U.S. prison for his role in at least 13 ransomware attacks that caused losses of approximately $53 million. Prosecutors say the accused also enjoyed a lengthy career of “cashing out” access to hacked bank accounts worldwide.

Independent Krebs

A Closer Look at the LAPSUS$ Data Extortion Group

March 23, 2022 admin A Little Sunshine, Ne'er-Do-Well News, SIM swapping

Credit to Author: BrianKrebs| Date: Wed, 23 Mar 2022 22:00:43 +0000

Microsoft and identity management platform Okta both disclosed this week breaches involving LAPSUS$, a relatively new cybercrime group that specializes in stealing data from big companies and threatening to publish the information unless a ransom demand is paid. Here’s a closer look at LAPSUS$, and some of the low-tech but high-impact methods the group uses to gain access to targeted organizations.

Independent Krebs

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

March 22, 2022 admin aleksandr "nastra" zhukov, chronopay, Dmitry Artimovich, igor artimovich, Ne'er-Do-Well News, pavel vrublevsky, redeye, vladislav horohorin, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 22 Mar 2022 16:33:35 +0000

Pavel Vrublevsky, founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book “Spam Nation,” was arrested in Moscow this month and charged with fraud. Russian authorities allege Vrublevsky operated several fraudulent SMS-based payment schemes, and facilitated money laundering for Hydra, the largest Russian darknet market. But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia’s state security services and the cybercriminal underground.

Independent Krebs

Lawmakers Probe Early Release of Top RU Cybercrook

March 15, 2022 admin aleksei burkov, directconnection, jake sullivan, k0pa, mazafaka, naama issachar, Ne'er-Do-Well News, Vladimir Putin

Credit to Author: BrianKrebs| Date: Tue, 15 Mar 2022 15:37:43 +0000

Aleksei Burkov, a cybercriminal who long operated two of Russia’s most exclusive underground hacking forums, was arrested in 2015 by Israeli authorities. The Russian government fought Burkov’s extradition to the U.S. for four years — even arresting and jailing an Israeli woman to force a prisoner swap. That effort failed: Burkov was sent to America, pleaded guilty, and was sentenced to nine years in prison. But a little more than a year later, he was quietly released and deported back to Russia. Now some Republican lawmakers are asking why a Russian hacker once described as “an asset of supreme importance” was allowed to shorten his stay.

Independent Krebs

Conti Ransomware Group Diaries, Part IV: Cryptocrime

March 7, 2022 admin A Little Sunshine, athens university school of information sciences and technolog, begemot, bloodrush, chainalysis, conti ransomware, ddos, demon, ghost, Gizmodo, jeffrey ladish, mango, matt novak, Ne'er-Do-Well News, pump-and-dump, ransomware, squid, stern, van

Credit to Author: BrianKrebs| Date: Tue, 08 Mar 2022 01:38:36 +0000

Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. The candid messages revealed how Conti evaded law enforcement and intelligence agencies, what it was like on a typical day at the Conti office, and how Conti secured the digital weaponry used in their attacks. This final post on the Conti conversations explores different schemes that Conti pursued to invest in and steal cryptocurrencies.